neodb

Direct and transitive dependency freshness, license, and CVE exposure from the latest SBOM.

Security Export CSV

91% Freshness

178 Dependencies

3 Outdated

0 Stale

0.2 Avg Behind

Dependency List

Latest release 0.14.1.2

All 178 Outdated 32 Has CVE 1 GPL 4

Dependency	Type	Current	Latest	Behind	CVE	License
mistune pypi	Direct	3.2.0	3.2.1	1 behind	1 high	BSD-3-Clause
sentry-sdk pypi	Direct	2.58.0	2.61.1	7 behind	—	Unknown
virtualenv pypi	Transitive	21.3.0	21.4.2	6 behind	—	Unknown
protobuf pypi	Transitive	7.34.1	7.35.0	4 behind	—	BSD-3-Clause AND LicenseRef-scancode-protobuf
python-discovery pypi	Transitive	1.2.2	1.4.0	4 behind	—	Unknown
requests pypi	Direct	2.33.1	2.34.2	4 behind	—	Apache-2.0
httpx pypi	Direct	0.28.1	1.0.0.dev3	3 behind	—	BSD-3-Clause
redis pypi	Transitive	7.4.0	8.0.0	3 behind	—	Unknown
ruff pypi	Direct	0.15.12	0.15.15	3 behind	—	MIT
types-pyyaml pypi	Transitive	6.0.12.20260408	6.0.12.20260518	3 behind	—	Unknown
certifi pypi	Direct	2026.2.25	2026.5.20	2 behind	—	MPL-2.0
click pypi	Transitive	8.3.3	8.4.1	2 behind	—	BSD-3-Clause
coverage pypi	Direct	7.13.5	7.14.1	2 behind	—	Apache-2.0
cryptography pypi	Transitive	46.0.7	48.0.0	2 behind	—	BSD-3-Clause OR Apache-2.0
pydantic-core pypi	Transitive	2.46.3	2.47.0	2 behind	—	Unknown
s3transfer pypi	Transitive	0.17.0	0.18.0	2 behind	—	Unknown
aiohappyeyeballs pypi	Transitive	2.6.1	2.6.2	1 behind	—	0BSD AND BSD-3-Clause AND LicenseRef-scancode-unknown-license-reference AND PSF-2.0 AND Python-2.0
aiohttp pypi	Transitive	3.13.5	3.14.0	1 behind	—	Apache-2.0 AND MIT
distlib pypi	Transitive	0.4.0	0.4.1	1 behind	—	PSF-2.0 AND Python-2.0
filelock pypi	Transitive	3.29.0	3.29.1	1 behind	—	Unknown
gunicorn pypi	Direct	25.3.0	26.0.0	1 behind	—	MIT AND HPND
lxml pypi	Direct	6.1.0	6.1.1	1 behind	—	BSD-3-Clause AND GPL-1.0-or-later AND LicenseRef-scancode-unknown-license-reference
platformdirs pypi	Transitive	4.9.6	4.10.0	1 behind	—	MIT
propcache pypi	Transitive	0.4.1	0.5.2	1 behind	—	Apache-2.0
pydantic pypi	Transitive	2.13.3	2.13.4	1 behind	—	MIT
pymdown-extensions pypi	Transitive	10.21.2	10.21.3	1 behind	—	Unknown
pyopenssl pypi	Transitive	26.1.0	26.2.0	1 behind	—	Unknown
regex pypi	Transitive	2026.4.4	2026.5.9	1 behind	—	CNRI-Python AND Apache-2.0
soupsieve pypi	Transitive	2.8.3	2.8.4	1 behind	—	MIT
urllib3 pypi	Transitive	2.6.3	2.7.0	1 behind	—	MIT
websockets pypi	Transitive	15.0.1	16.0.0	1 behind	—	BSD-3-Clause
yarl pypi	Transitive	1.23.0	1.24.2	1 behind	—	Apache-2.0

License Breakdown

Unknown 62

MIT 51

BSD-3-Clause 14

Apache-2.0 13

BSD-2-Clause AND BSD-3-Clause 9

Apache-2.0 AND MIT 3

BSD-2-Clause 2

0BSD AND BSD-3-Clause AND LicenseRef-scancode-other-permissive AND MIT AND Python-2.0 1

0BSD AND BSD-3-Clause AND LicenseRef-scancode-unknown-license-reference AND PSF-2.0 AND Python-2.0 1

Apache-2.0 AND BSD-2-Clause 1

Apache-2.0 AND BSD-3-Clause AND LicenseRef-scancode-unknown-license-reference 1

Apache-2.0 AND Python-2.0 1

BSD-2-Clause AND BSD-3-Clause AND MIT 1

BSD-2-Clause AND BSD-3-Clause AND PSF-2.0 AND Python-2.0 AND Python-2.0.1 1

BSD-3-Clause AND GPL-1.0-or-later AND LicenseRef-scancode-unknown-license-reference 1

BSD-3-Clause AND LicenseRef-scancode-protobuf 1

BSD-3-Clause OR Apache-2.0 1

CNRI-Python AND Apache-2.0 1

GPL-3.0-only AND GPL-3.0-or-later 1

ISC 1

ISC AND MPL-2.0 1

LGPL-2.0-or-later AND LGPL-3.0-or-later 1

MIT AND HPND 1

MIT AND MPL-2.0 1

MIT AND ZPL-2.1 1

MIT-0 1

MIT-CMU 1

MPL-2.0 1

PSF-2.0 AND Python-2.0 1

Python-2.0 AND GPL-1.0-or-later AND Python-2.0 AND BSD-3-Clause AND Python-2.0 AND BSD-3-Clause AND 0BSD 1

Python-2.0 AND Python-2.0 AND BSD-3-Clause AND Python-2.0 AND BSD-3-Clause AND 0BSD 1

CVE Severity

critical 0

high 1

medium 0

low 0

unknown 0